Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
File: 8o-houRJGJHBmw8QsIb2VZhPWHk.mft (raw, json)
Hash identifier: Uiv6hCw8yJY36URXx1sVTgaQmDxWfcToFZSo5Wn6GJk=
Subject key identifier: C2:3C:43:CE:78:82:23:25:2F:E9:1F:F5:D2:7F:F8:C2:8C:B5:F8:A3
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 019D382EA2CC64979151E7ED2EFA8B3386AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
Manifest number: 0CE0
Signing time: Sun 29 Mar 2026 06:01:13 +0000
Manifest this update: Sun 29 Mar 2026 06:01:13 +0000
Manifest next update: Mon 30 Mar 2026 06:01:13 +0000
Files and hashes: 1: 8o-houRJGJHBmw8QsIb2VZhPWHk.crl (hash: QTowfGCVCFYqefI0fkmp3VFvWW87VqAZfxUtqLFdRkE=)
2: a_bPKr_BRW7-uV28J0kW18UUGgI.roa (hash: ujNW2fJdpnTVC1FhgJD/6p6WEXThSSTIszSadQyIDQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:a2:cc:64:97:91:51:e7:ed:2e:fa:8b:33:86:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Mar 29 06:01:13 2026 GMT
Not After : Mar 30 06:01:13 2026 GMT
Subject: CN=c23c43ce788223252fe91ff5d27ff8c28cb5f8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:17:85:f1:bf:8e:2e:70:1b:64:e5:f5:d6:87:
07:70:c3:78:14:3e:9a:41:fd:7b:04:81:bb:f9:3a:
16:5b:36:18:68:e5:dd:5c:2a:7e:96:7b:10:73:65:
b1:f4:06:d2:37:2c:a8:94:59:96:fc:51:bb:89:d3:
b3:7b:df:3f:2f:d9:4c:ef:57:26:16:7e:aa:47:1d:
1e:8c:0b:ad:16:7a:54:12:08:dc:e5:52:6f:cf:f3:
bb:97:af:54:67:15:0d:0a:40:d8:bd:80:ea:b8:ac:
0b:92:3c:d1:61:6a:54:6d:13:8a:bb:20:17:7e:9e:
bd:6b:a3:bd:13:5b:e7:8c:46:de:a1:7c:67:db:a4:
ac:37:e4:fa:aa:be:e9:39:b1:d8:a3:50:b5:72:56:
35:3c:40:26:8b:da:2d:2b:2d:44:03:5b:e8:c2:39:
64:69:da:67:d9:15:f7:08:9d:80:30:41:ee:48:fb:
d1:f9:c0:16:f2:8f:e1:e2:33:4c:00:6f:08:b5:7a:
8a:f3:e4:f9:06:08:d5:19:55:52:ca:85:c5:da:aa:
c7:ab:e6:c0:94:a3:97:b8:58:a2:be:95:7e:fc:b0:
75:41:22:cf:58:2b:79:d2:2b:57:48:20:7b:4a:ca:
8d:6e:01:0f:5f:e7:a3:c2:2b:54:55:cf:f7:11:4c:
49:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3C:43:CE:78:82:23:25:2F:E9:1F:F5:D2:7F:F8:C2:8C:B5:F8:A3
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:db:c2:f2:6b:3c:1f:0e:e7:70:ab:24:54:fe:c3:84:16:d5:
21:99:2b:8b:95:6e:14:b2:54:c8:d3:20:2f:ab:73:db:c4:c9:
1a:33:27:c7:16:e9:7f:d8:da:63:81:fb:1c:10:46:59:9f:63:
1d:85:8c:e1:86:59:73:25:1e:fa:81:48:3b:e3:17:c8:d7:70:
16:9b:cc:8d:46:d7:67:e1:a7:6a:78:e4:a8:32:25:a8:55:72:
bc:d8:be:26:b1:55:3d:4b:d5:d3:d6:7d:20:c8:f3:ea:0c:fc:
d1:ce:e8:18:cb:9b:52:5b:4f:7a:bd:97:d5:89:03:50:c1:cb:
ff:9e:94:d9:37:35:70:26:32:22:a2:a0:1d:e0:0d:85:7f:a8:
13:9e:8e:bb:ca:18:81:fb:34:aa:89:be:fb:7c:ec:44:4e:44:
f0:b5:2a:76:d4:ed:ca:7d:91:4c:3b:9b:5a:1c:37:42:b4:7b:
e9:27:8b:1d:23:db:9f:3f:70:c1:eb:0f:1c:e2:bd:64:56:43:
67:9b:ac:33:f1:7b:b9:0f:13:31:b0:bb:1b:f4:6b:5c:c8:4c:
85:96:60:33:e3:61:6b:e8:0a:7c:b8:df:0c:df:6e:bd:1b:e2:
fb:bb:34:63:b9:b5:3b:3e:4f:95:dc:a8:ad:b0:c8:da:6f:cb:
10:7b:e1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:13 2026 by rpki-client